Keyboard signature security system
First Claim
Patent Images
1. A method of processing automatic teller machine transactions comprising the steps of:
- measuring the timing parameters associated with the customer'"'"'s interactions with the machine, transmitting the timing parameters to an analysis site, transmitting transaction details to the analysis site, comparing the timing parameters to a stored reference, comparing the transaction details to the customer'"'"'s typical habits, and using the results of both comparisons to make a decision as to whether or not to handle the transaction in a normal manner.
1 Assignment
0 Petitions
Accused Products
Abstract
A method is taught for analyzing the keystroke signature of a keyboard customer. The signature is compared to a database of previously stored keystroke sequences to allow for a statistical test for the identity of the user. This method allows for the use of varying keyboards to facilitate electronic commerce over the Internet from arbitrary terminals and personal computers.
122 Citations
17 Claims
-
1. A method of processing automatic teller machine transactions comprising the steps of:
-
measuring the timing parameters associated with the customer'"'"'s interactions with the machine, transmitting the timing parameters to an analysis site, transmitting transaction details to the analysis site, comparing the timing parameters to a stored reference, comparing the transaction details to the customer'"'"'s typical habits, and using the results of both comparisons to make a decision as to whether or not to handle the transaction in a normal manner. - View Dependent Claims (2, 3, 4, 5, 7)
-
-
6. A method of processing electronic transactions involving a telephone comprising the steps of:
-
measuring the timing parameters associated with the customer'"'"'s interactions with the telephone keypad, transmitting the timing parameters to an analysis site, comparing the timing parameters to stored references which have acceptance criteria, and using the results of the comparison to make a decision as to whether or not to handle the transaction in a normal manner.
-
-
8. A method of processing electronic transactions comprising the steps of:
-
giving the customer variable commands requiring keyboard interaction, measuring the timing parameters associated with the customer'"'"'s interactions with the keyboard, transmitting the keyboard timing parameters to an analysis site comparing those parameters to a stored reference which has acceptance criteria, and p1 using the results of this comparison to make a decision as to whether or not to handle the transaction in a normal manner. - View Dependent Claims (9, 10)
-
-
11. A method of processing electronic transactions comprising the steps of:
-
measuring the timing parameters associated with a customer'"'"'s interactions with a keyboard, transmitting the keyboard type to an analysis site, transmitting the timing parameters to an analysis site, noting if the keyboard type is one with which the customer has minimal experience, using collaborative filtering to help establish acceptance criteria in the case of minimal experience, comparing the transmitted keyboard timing parameters to the acceptance criteria, and using the results of this comparison to make a decision as to whether or not to handle the transaction in a normal manner.
-
-
12. A method of processing electronic transactions comprising the steps of:
-
measuring the timing parameters associated with a customer'"'"'s interactions with a keyboard, transmitting the timing parameters to an analysis site, noting if the keyboard type is one with which the customer has minimal experience, adjusting the stored acceptance criteria to establish new temporary acceptance criteria in the case of minimal experience to adjust for the customer'"'"'s learning time with the new keyboard, comparing the transmitted keyboard timing parameters to the acceptance criteria, and using the results of this comparison to make a decision as to whether or not to handle the transaction in a normal manner.
-
-
13. A method of processing electronic transactions comprising the steps of:
-
measuring the timing parameters associated with a customer'"'"'s interactions with a keyboard, transmitting the timing parameters to an analysis site, comparing the transmitted keyboard timing parameters to stored acceptance criteria, using the results of this comparison to make a decision as to whether or not to handle the transaction in a normal manner, and storing rejected keyboard signature entries for possible prosecution assistance.
-
-
14. A method of processing electronic transactions comprising the steps of:
-
measuring the timing parameters associated with a customer'"'"'s interactions with a keyboard, transmitting the timing parameters to an analysis site, noting the key which the customer uses for the “
enter”
command,comparing the transmitted keyboard timing parameters to stored acceptance criteria, comparing the key used for the “
enter”
command to the customer'"'"'s previous experience, andusing the results of both comparisons to make a decision as to whether or not to handle the transaction in a normal manner or not.
-
-
15. A method of processing electronic transactions comprising the steps of:
-
measuring the timing parameters associated with a customer'"'"'s interactions with a keyboard, transmitting the timing parameters to an analysis site, processing the transmitted keyboard timing parameters to transform them each into a percentage value of the total keyboard entry time for the appropriate data block entered, comparing the percentage values to stored acceptance criteria, and using the results of the comparison to make a decision as to whether or not to handle the transaction in a normal manner. - View Dependent Claims (16)
-
-
17. A method of processing electronic transactions comprising the steps of:
-
measuring the timing parameters associated with the customer'"'"'s interactions with a keyboard, transmitting the timing parameters to an analysis site, calculating a measure of the variability in the timing parameters, comparing those parameters to a stored reference which has acceptance criteria, comparing the variability in the timing parameters to other acceptance criteria, and using the results of both comparisons to make a decision as to whether or not to handle the transaction in a normal manner.
-
Specification